Application No.: 10/527,651 



Docket No.: SONYJP 3.3-328 



IN THE CLAIMS 

1. (currently amended) A data processing method performed by 
a first processing device and a second processing device when 
the first data processing device holds first authentication key 
data and encryption key data and the second data processing 
device holds second authentication key data corresponding to the 
first authentication key data and decryption key data 
corresponding to the encryption data, comprising: 

a first step by which the first data processing device 
uses the first authentication key data, wherein the first 
authentication key data is from an integrated circuit ("IC") 
device and had been generated using predetermined key data 
designated — by — key — designation — data , and the second processing 
device uses the second authentication key data, wherein the 
second authentication key data is generated using ^he 
predetermined key data designated by ^he — key designation data, 
wherein the key designation data is from the IC device, and 
authentication is performed between the first data processing 
device and the second data processing device; 

a second step by which, when the second data 
processing device verifies the first data processing device by 
the authentication in the first step, the first processing 
device uses the encryption key data for encryption and the 
second processing device decrypts encrypted data provided to the 
second data processing device by using the decryption key data, 
and 

a third step by which, when the second data processing 
device judges that decryption data obtained by the decryption in 
the second step is decrypted adequately, the second data 
processing device uses the decryption data as the data that is 
effective . 
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2 . (previously presented) A data processing method according 
to claim 1, wherein 

in the first step, the first data processing device 
and the second data processing device perform encryption and 
decryption of predetermined data based on a first encryption 
algorithm and a first decryption algorithm corresponding to the 
first encryption algorithm and perform the authentication, and 

in the second step, the second data processing device 
decrypts the encrypted data encrypted based on a second 
encryption algorithm based on a second decryption algorithm 
corresponding to the second encryption algorithm. 

3. (currently amended) A data processing method according to 
claim 1, wherein the first data processing device is verified in 
the second step, when the second data processing device judges 
that the first authentication key data and the second 
authentication key data are the same by the authentication in 
the first step. 

4. (currently amended) A data processing method according to 
claim 1, wherein, when the first authentication key data is 
generated by a first predetermined generation method by using 
the predetermined key data, the first step comprises: 

a fourth step by which the first data processing 

device provides the key designation data designating £rhe 

predetermined key data used £e*r generation fe*te first 

authentication key data to the second data processing device, 

a fifth step by which the second data processing 
device generates the second authentication key data by a second 
predetermined generation method by using the predetermined — key 
data designated by the key designation data received in the 
fourth step, 

a sixth step by which the first data processing device 

uses the first authentication key data and uses the second 
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authentication key data generated by the second data processing 
device in the fifth step to perform the authentication, and 

a seventh step by which^ when the second data 
processing device judges that the first authentication key data 
and the second authentication key data are the same, the first 
data processing device is verified. 

5. (currently amended) A data processing system comprising: 

a first data processing device holding first 
authentication key data and encryption key data, wherein the 
first authentication key data is from an integrated circuit 
( 11 IC") device and had been generated using predetermined key 
da t a designated by key designation data , and 

a second data processing device holding second 
authentication key data corresponding to the first 
authentication key data, and decryption key data corresponding 
to the encryption key data, wherein the second authentication 

key data is generated using -fefee predetermined key data 

designated by ^the key designation data, wherein the key 

designation data is from the IC device, wherein 

the first data processing device uses the first 
authentication key data and the second data . processing device 
uses the second authentication key data, and an authentication 
is performed between the first data processing device and the 
second data processing device, 

the second data processing device decrypts encrypted 
data provided to the second data processing device by the first 
data processing device by using the encryption key data for 
encryption by using the decryption key data, when the second 
data processing device verifies the first data processing device 
by the authentication, and 

the second data processing device uses the decryption 

data as the data that is effective, when the second data 
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processing device judged decryption data obtained by the 
decryption is decrypted adequately. 

6. (currently amended) A data processing method performed by 
a data processing device holding first authentication key data 
and encryption key data, comprising: 

a first step of performing authentication with an 
authenticated side by using the first authentication key data, 
wherein the first authentication key data is from an integrated 
circuit ( " IC") device and had been generated using predetermined 
key data — designated — by — key — designation — data, — wherein — the — key 

designation data i-s from the I-G device , and wherein the 

authenticated side uses : the — second authentication key data 
generated using predetermined — key data designated by ^the — key 
designation data from the IC device , 

a second step of encrypting predetermined data by 
using the encryption key data after the authentication in the 
first step, and 

a third step of outputting data obtained from the 
encryption in the second step to the authenticated side. 

7. (currently amended) A data processing method according to 
claim 6, wherein, when authenticating means of said 
authenticated side for holding key data uses the predetermined 
key designation data, generates the second authentication key 
data based on a first predetermined generation method, performs 
authentication with the data processing device by using the 
second authentication key data and uses the data outputted in 
the third step as the data that is effective, conditional on 
confirming that the first authentication key data and the second 
authentication key data are the same, 

the first step comprises: 

a fourth step of providing the key designation data 

designating the — predetermined — key — data — used — wh e n — the f ir s t 
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authentication key data ts generated based en a second 

predetermined generation method to the authenticating means, and 

a fifth step of performing the authentication with the 
authenticating means by using the first authentication key data. 

8. (currently amended) A data processing device encrypting 
predetermined data and outputting the data to an authenticated 
side, comprising: 

storing means for storing authentication key data and 
encryption key data, wherein the authentication key data is from 
an integrated circuit ("IC") device and had been generated using 
predetermined key data — designated — by — key — d e signation — data, 
wherein the key designation data is — from the — IC device ; 

authenticating means for performing authentication 
with the authenticated side by using the authentication key 
data, wherein the authenticated side uses -the — predetermined key 
data designated by the key designation data , wherein the key 
designation data is from the IC device —; 

encryption means for encrypting predetermined data by 
using the encryption key data after the authentication of the 
authenticating means, and 

output means for outputting data obtained by the 
encryption of the encryption means to the authenticated side. 

9. (currently amended) A program on a computer readable 
medium and including information executable by a data processing 
device holding authentication key data and encryption key data, 
the program comprising: 

a first step of performing authentication with an 

authenticated side by using the authentication key data, wherein 

the authentication key data is from an integrated circuit ( " IC" ) 

device and had been generated using predetermined key data 

designated — by — key — designation — data , wherein — the — key — designation 

data — ie — from — t^e — I-C — device , and wherein the authenticated side 
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uses second authentication key data generated using ^he 
predetermined — key data designated by -fc-he — key designation data^ 
wherein the key designation data is from the IC device ; 

a second step of encrypting predetermined data by 
using the encryption key data after the authentication in the 
first step, and 

a third step of outputting data obtained by the 
encryption in the second step to the authenticated side. 

10. (currently amended) A data processing method performed by 
a data processing device holding authentication key data and 
decryption key data, comprising: 

a first step of performing authentication with means 
to be authenticated by using second authentication key data, 
wherein the second authentication key data is generated from 
predetermined — key data designated by key designation data, 
wherein the key designation data is from an integrated circuit 
("IC") device, and wherein the IC device includes first 
authentication key data generated using ^fc-he — predetermined key 
data designated by the key dcoignation data ; 

a second step of decrypting data received from the 
means to be authenticated by using the decryption key data, and 

a third step of using data obtained by the decryption 
in the second step as the data that is effective, when verifying 
the means to be authenticated by the authentication in the first 
step. 

11. (currently amended) A data processing method according to 

claim 10, wherein when the data processing device holding the 

predetermined key data performs authentication with the means to 

be authenticated holding the first authentication key data 

generated by a first predetermined generation method by using 

the predetermined key data and hard to restore the key data , 

the first step comprises: 
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a fourth step of receiving at the data processing 
device the key designation data designating the predetermined 
key data from the means to be authenticated, 

a fifth step of generating the second authentication 
key data by a second predetermined generation method by using 
the predetermined — key data designated by the key designation 
data received in the fourth step, 

a sixth step of performing the authentication with the 
means to be authenticated using the first authentication key 
data for the authentication by using the second authentication 
key data generated in the fifth step, and 

a seventh step of verifying the means to be 
authenticated when judging that the first authentication key 
data and the second authentication key data by the 
authentication are the same in the sixth step. 

12. (previously presented) A data processing method according 
to claim 10, wherein, a function of the data processing device 
permitted by the means to be authenticated related to the 
predetermined key data, or an access to data held by the data 
processing device, is executed in the third step. 

13. (currently amended) A data processing device holding 
authentication key data and decryption key data, comprising: 

authenticating means for authenticating with means to 
be authenticated by using second authentication key data, 
wherein the second authentication key data is generated from 
predetermined — key data designated by key designation data, 
wherein the key designation data is from an integrated circuit 
("IC") device, and wherein the IC device includes first 
authentication key data generated using the — predetermined key 
data dcoignatcd by the key designation data ; 

input means for inputting data from the decryption key 

data; 
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decryption means for decrypting the data inputted from 
the means to be authenticated via the input means by using the 
decryption key data, and 

control means for using data obtained by the 
decryption of the decryption means as the data that is effective 
when the means to be authenticated is verified by the 
authentication of the authenticating means. 

14. (currently amended) A program on a computer readable 
medium and including information executable by a data processing 
device holding authentication key data and decryption key data, 
the program comprising: 

a first step of performing authentication with means 
to be authenticated by using second authentication key data, 
wherein the second authentication key data is generated from 
predetermined — key data designated by key designation data, 
wherein the key designation data is from an integrated circuit 
( " IC") device, and wherein the IC device includes first 
authentication key data generated using the predetermined key 
data designated by the key designation data ; 

a second step of decrypting data received from the 
means to be authenticated by using the decryption key data, and 

a third step of using data obtained by the decryption 
in the second step as the data that is effective when the means 
to be authenticated is verified by the authentication in the 
first step. 

15. (previously presented) A data processing method according 
to claim 1, 

wherein the first authentication key data is 
communicatively provided from the IC device to the first data 
processing device, and 
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wherein the key designation data is communicatively 
provided from the IC device to the second data processing 
device . 

16. (previously presented) A data processing system according 
to claim 5, 

wherein the first authentication key data is 
communicatively provided from the IC device to the first data 
processing device, and 

wherein the key designation data is communicatively 
provided from the IC device to the second data processing 
device . 

17. (previously presented) A data processing method according 
to claim 6, 

wherein the first authentication key data is 
communicatively provided from the IC device to the data 
processing device, and 

wherein the key designation data is communicatively 
provided from the IC device to the authenticated side. 

18. (previously presented) A data processing device according 
to claim 8, 

wherein the authentication key data is communicatively 
provided from the IC device to the data processing device, and 

wherein the key designation data is communicatively 
provided from the IC device to the authenticated side. 

19. (previously presented) A program according to claim 9, 
wherein the authentication key data is communicatively 

provided from the IC device to the data processing device, and 

wherein the key designation data is communicatively 
provided from the IC device to the authenticated side. 

20. (previously presented) A data processing method according 
to claim 10, 
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wherein the first authentication key data is 
communicatively provided from the IC device to the means to be 
authenticated, and 

wherein the key designation data is communicatively 
provided from the IC device to the data processing device. 

21. (previously presented) A data processing device according 
to claim 13, 

wherein the first authentication key data is 
communicatively provided from the IC device to the means to be 
authenticated, and 

wherein the key designation data is communicatively 
provided from the IC device to the data processing device. 

22. (previously presented) A program according to claim 14, 
wherein the first authentication key data is 

communicatively provided from the IC device to the means to be 
authenticated, and 

wherein the key designation data is communicatively 
provided from the IC device to the data processing device. 

23. (new) A method for authentication comprising: 
retrieving first authentication key data and key 

designation data from an integrated circuit ("IC") of a mobile 
communication device, wherein the first authentication key data 
had been generated using predetermined key data; and 

using the first authentication key data at a first data 
processing device and second authentication key data at a second 
data processing device to perform authentication between the 
first data processing device and the second data processing 
device, wherein the second authentication key data is generated 
at the second data processing device using key data designated 
by the key designation data. 

24. (new) The method of claim 23, wherein the mobile 

communication device is a cellular telephone. 
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25. (new) The method of claim 23 further comprising: 
verifying the first data processing device, when the second 

data processing device judges that the first authentication key 
data and the second authentication key data are the same by the 
authentication . 

26. (new) The method of claim 23, wherein the first 
authentication key data is generated by a first predetermined 
generation method using the predetermined key data, the method 
further comprising : 

providing the key designation data from the first data 
processing device to the second data processing device; 

generating at the second data processing device the 
second authentication key data by a second predetermined 
generation method by using the key data designated by the key 
designation data received from the first data processing device; 
and 

verifying the first data processing device, when the 
second data processing device judges that the first 
authentication data and the second authentication data are the 
same . . 

27. (new) A system for authentication comprising: 

a first data processing device holding first 
authentication key data, wherein the first authentication key 
data is from an integrated circuit (" IC") of a mobile 
communication device and had been generated using predetermined 
key data, and 

a second data processing device holding second 
authentication key data, wherein the second authentication key 
data is generated using key data designated by key designation 
data, wherein the key designation data is from the IC of the 
mobile communication device, 
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wherein the first data processing device uses the first 
authentication key data and the second data processing device 
uses the second authentication key data' to perform an 
authentication between the first data processing device and the 
second data processing device. 

28. (new) The system of claim 27, wherein the mobile 
communication device is a cellular telephone. 

29. (new) The system of claim 27, wherein the first data 
processing device is verified, when the second data processing 
device judges that the first authentication key data and the 
second authentication data are the same by the authentication. 

30. (new) The system of claim 27, wherein the first 
authentication key data is generated by a first predetermined 
generation method using the predetermined key data, and wherein 
the first data processing device provides the key designation 
data to the second data processing device; 

wherein the second data processing device generates the 
second authentication key data by a second predetermined 
generation method by using the key data designated by the key 
designation data received from the first data processing device; 
and 

wherein the first data processing device is verified, when 
the second data processing device judges that the first 
authentication . data and the second authentication data are the 
same . 
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